MGASA-2015-0454

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2015-0454.html

Import Source

https://advisories.mageia.org/MGASA-2015-0454.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2015-0454

Published

2015-11-19T22:08:19Z

Modified

2026-04-16T04:27:57.065877Z

Summary

Updated uglify-js packages fix security vulnerability

Details

The UglifyJS node module has a problem where the combination of De Morgan's Law and non-boolean values can lead to a case where code is incorrectly minified, which can lead to possibly malicious minified JS code.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5

uglify-js

Package

Name: uglify-js
Purl: pkg:rpm/mageia/uglify-js?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.24-3.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-align-text

Package

Name: nodejs-align-text
Purl: pkg:rpm/mageia/nodejs-align-text?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.3-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-ansi-regex

Package

Name: nodejs-ansi-regex
Purl: pkg:rpm/mageia/nodejs-ansi-regex?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-camelcase

Package

Name: nodejs-camelcase
Purl: pkg:rpm/mageia/nodejs-camelcase?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.1-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-center-align

Package

Name: nodejs-center-align
Purl: pkg:rpm/mageia/nodejs-center-align?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.1-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-cliui

Package

Name: nodejs-cliui
Purl: pkg:rpm/mageia/nodejs-cliui?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.3-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-code-point-at

Package

Name: nodejs-code-point-at
Purl: pkg:rpm/mageia/nodejs-code-point-at?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-decamelize

Package

Name: nodejs-decamelize
Purl: pkg:rpm/mageia/nodejs-decamelize?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-invert-kv

Package

Name: nodejs-invert-kv
Purl: pkg:rpm/mageia/nodejs-invert-kv?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-is-buffer

Package

Name: nodejs-is-buffer
Purl: pkg:rpm/mageia/nodejs-is-buffer?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.1.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-is-fullwidth-code-point

Package

Name: nodejs-is-fullwidth-code-point
Purl: pkg:rpm/mageia/nodejs-is-fullwidth-code-point?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-kind-of

Package

Name: nodejs-kind-of
Purl: pkg:rpm/mageia/nodejs-kind-of?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.0.1-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-lcid

Package

Name: nodejs-lcid
Purl: pkg:rpm/mageia/nodejs-lcid?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-longest

Package

Name: nodejs-longest
Purl: pkg:rpm/mageia/nodejs-longest?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-minimist

Package

Name: nodejs-minimist
Purl: pkg:rpm/mageia/nodejs-minimist?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-number-is-nan

Package

Name: nodejs-number-is-nan
Purl: pkg:rpm/mageia/nodejs-number-is-nan?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-os-locale

Package

Name: nodejs-os-locale
Purl: pkg:rpm/mageia/nodejs-os-locale?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-repeat-string

Package

Name: nodejs-repeat-string
Purl: pkg:rpm/mageia/nodejs-repeat-string?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.5.2-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-right-align

Package

Name: nodejs-right-align
Purl: pkg:rpm/mageia/nodejs-right-align?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.3-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-source-map

Package

Name: nodejs-source-map
Purl: pkg:rpm/mageia/nodejs-source-map?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.5.1-1.1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-string-width

Package

Name: nodejs-string-width
Purl: pkg:rpm/mageia/nodejs-string-width?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.1-6.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-strip-ansi

Package

Name: nodejs-strip-ansi
Purl: pkg:rpm/mageia/nodejs-strip-ansi?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-window-size

Package

Name: nodejs-window-size
Purl: pkg:rpm/mageia/nodejs-window-size?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.2-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-wrap-ansi

Package

Name: nodejs-wrap-ansi
Purl: pkg:rpm/mageia/nodejs-wrap-ansi?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-y18n

Package

Name: nodejs-y18n
Purl: pkg:rpm/mageia/nodejs-y18n?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.2.0-1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"

nodejs-yargs

Package

Name: nodejs-yargs
Purl: pkg:rpm/mageia/nodejs-yargs?arch=source&distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.28.0-2.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2015-0454.json"